000000067 001__ 67
000000067 005__ 20130522141952.0
000000067 037__ $$aLERSSE-PRESENTATION-2005-031
000000067 041__ $$aeng
000000067 100__ $$aKonstantin Beznosov
000000067 245__ $$aOn the Benefits of Decomposing Policy Engines into Components
000000067 260__ $$c2005-10-16
000000067 520__ $$aIn order for middleware systems to be adaptive, their properties and services need to support a wide variety of application-specific policies. However, application developers and administrators should not be expected to cope with complex policy languages and evaluation engines or to develop custom engines from scratch. In this paper, we discuss the benefits of policy engines designed as component frameworks with a mix of parameterized pre-built and custom logic composed to implement complex policies. To provide an example of such a design approach, we present an authorization architecture for ASP.NET Web services that has been implemented in a real-world system.
000000067 6531_ $$aauthorization
000000067 6531_ $$aaccess control
000000067 6531_ $$aWeb services
000000067 6531_ $$apolicy
000000067 6531_ $$apolicy engines
000000067 6531_ $$aRAD
000000067 6531_ $$aobject security attributes
000000067 6531_ $$aEngineering Security Mechanisms
000000067 8560_ $$fqiangw@ece.ubc.ca
000000067 8564_ $$uhttp://lersse-dl.ece.ubc.ca/record/67/files/67.pdf$$yTransfer from CDS 0.99.7
000000067 909C4 $$pKonstantin Beznosov, "On the Benefits of Decomposing Policy Engines into Components," talk given at The 3rd Workshop on Reflective and Adaptive Middleware, Toronto, Canada, 19 October, 2004.
000000067 980__ $$aPRESENTATION